Slide 5
Slide 5 text
#RSAC
Attacking An Internal Network (REST style)
Find an HTTP REST proxy w/ vulns
Figure out which REST based systems are
running on the internal network
Exfiltrate data from the REST interface of
the backend system or GET RCE on
internal REST API
What backend systems have a REST API:
ODATA in MS SQL Server
Beehive and OAE RESTful API
Neo4j, Mongo, Couch, Cassandra,
Hbase, your company, and many more
X Non-compromised machine
Y Affected machine
SAP REST API
SAP
AS5
…
Pub REST API
Mongo
Couch
Neo4j
Cassan
HBase
…
REST
API
REST
API
REST
API
REST
API
REST
API
REST
API
REST
EAI
EII
ESB